Privacy Policy

Last Updated: November 29, 2025
Effective Date: November 29, 2025
  1. Introduction

Welcome to Sorom ("we," "us," "our," or "Sorom"). This Privacy Policy explains how Sorom Inc. collects, uses, shares, and protects your personal information when you use our mobile application and related services (collectively, the "Services").


By using Sorom, you agree to the collection and use of information in accordance with this policy. If you do not agree with any part of this policy, please do not use our Services.

  1. Information We Collect
2.1 Information We Collect

Account Information

  • Full name and display name

  • Email address

  • Date of birth (we require users to be 18+)

  • Username

  • Password (encrypted)

  • Profile photo

  • Bio/description

  • Home city and country


Profile & Matching Information

  • Travel preferences and interests

  • Personality assessment responses (Big Five traits)

  • Communication style preferences

  • Travel style preferences (budget, pace, spontaneity)

  • Languages spoken

  • Travel availability dates and destinations

  • Match profile photos and descriptions


Content You Create

  • Journals (posts with text, photos, videos)

  • Moments (24-hour stories)

  • Travel diaries

  • Comments and reactions

  • Chat messages

  • Itinerary details


Safety Information

  • Emergency contact details (name, phone, email, relationship)

  • Safety check-in schedules

  • Meetup verification PINs


Booking Information

  • Hotel search preferences

  • Guest information for bookings

  • Booking history

  • Payment information (processed securely by third parties)

2.2 Information Collected Automatically

Device Information

  • Device type and model

  • Operating system version

  • Unique device identifiers

  • Push notification tokens (FCM/APNS)


Usage Information

  • App interactions and feature usage

  • Search queries

  • Content viewed

  • Time spent on features

  • Crash logs and diagnostics


Location Features

  • Location data when you tag content (optional, user-initiated)

  • City-level location for matching (approximate)

  • We do NOT continuously track your location

2.3 Information from Third Parties

Identity Verification (Premium)

  • Medallion/Authenticate verification status (verified/not verified)

  • We do NOT receive copies of identity documents


Payment Processors

  • RevenueCat processes subscriptions; we receive subscription status only

  • Emerging Travel Group processes hotel bookings; we received booking status only

  • We do NOT store credit card numbers

  1. How We Use Your Information

We use collected information to:


Provide Core Services

  • Create and manage your account

  • Enable travel matching based on compatibility

  • Facilitate communication between matched users

  • Display and share your content

  • Manage itineraries and bookings


Improve & Personalize

  • Calculate compatibility scores

  • Recommend potential travel matches

  • Personalize your feed and content

  • Analyze usage to improve features


Safety & Security

  • Process emergency contact alerts

  • Enable safety check-ins and panic button features

  • Generate meetup verification PINs

  • Detect and prevent fraud, spam, and abuse

  • Enforce our Terms of Use


Communications

  • Send account-related notifications

  • Deliver push notifications (with your permission)

  • Send email updates about matches, messages, and activity

  • Provide customer support


Legal & Compliance

  • Comply with legal obligations

  • Respond to legal requests

  • Protect rights and safety

  1. How We Share Your Information
4.1 With Other Users

Public Information

  • Profile name, photo, bio (based on your privacy settings)

  • Journals marked as "public"

  • Moments (visible to followers)


Matched Users

  • Profile details shared with accepted matches

  • Chat messages between participants

  • Shared itinerary information


Followers (if your account is private)

  • Your content is only visible to approved followers

4.2 With Service Providers

We share data with trusted third parties who assist us:

4.3 For Legal Reasons

We may disclose information:

  • To comply with legal obligations

  • To respond to valid legal requests

  • To protect the safety of users or the public

  • To prevent fraud or security issues

  • In connection with a merger or acquisition

4.4 With Your Consent

We may share information for other purposes with your explicit consent.

  1. Your Rights & Choices
5.1 Access & Portability

You can:

  • View your profile and account information in the app

  • Request a copy of your data (Settings → Account Management → Export Data)

  • Download your data in a portable format

5.2 Correction

You can update your profile information at any time through the app.

5.3 Deletion

You can:

  • Delete individual content (journals, moments, comments)

  • Delete your entire account (Settings → Account Management → Delete Account)

  • Account deletion removes your data within 30 days, with anonymized backup retention for 12 months

5.4 Privacy Controls

  • Private Account: Only approved followers can see your content

  • Location Visibility: Control who sees your location

  • Block Users: Prevent specific users from seeing your content or contacting you

5.5 Communication Preferences

Manage notifications in Settings → Notifications:

  • Toggle push notifications by type (matches, messages, likes, etc.)

  • Toggle email notifications by type

  • Mute specific conversations

5.6 GDPR Rights (EEA/UK Users)

If you're in the European Economic Area or UK:

  • Right to Access: Request a copy of your data

  • Right to Rectification: Correct inaccurate data

  • Right to Erasure: Request deletion of your data

  • Right to Restrict Processing: Limit how we use your data

  • Right to Data Portability: Receive your data in a portable format

  • Right to Object: Object to certain processing

  • Right to Withdraw Consent: Withdraw consent at any time


Contact: [email protected]

5.7 CCPA Rights (California Users)

California residents have the right to:

  • Know what personal information we collect

  • Request deletion of personal information

  • Opt-out of the sale of personal information (we do NOT sell your data)

  • Non-discrimination for exercising privacy rights


Contact: [email protected]

  1. Data Security

We implement security measures including:

  • Encryption of data in transit (HTTPS/TLS)

  • Encryption of sensitive data at rest

  • Row-Level Security (RLS) on all database tables

  • Secure authentication with PKCE

  • Regular security audits

  • Access controls and logging


However, no system is 100% secure. Please use strong passwords and protect your account credentials.

  1. Data Retention
  1. Children's Privacy

Sorom is not intended for users under 18 years of age. We do not knowingly collect information from children. If we learn we have collected data from a child under 18, we will delete it promptly.

  1. International Data Transfers

Your data may be processed in countries outside your residence, including the United States. We ensure appropriate safeguards are in place for international transfers, including Standard Contractual Clauses where required.

  1. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes by:

  • Posting the updated policy with a new "Last Updated" date

  • Sending an email notification for significant changes

  • In-app notification


Your continued use of Sorom after changes constitutes acceptance.

  1. Contact Us

For privacy questions, concerns, or to exercise your rights:

Email: [email protected]
Mail: Sorom Inc., 1552 South Route 59 #1102, Naperville, IL 60564, USA

Data Protection Officer (EEA/UK): [email protected]



© 2025 Sorom. All rights reserved.